I’m not following any links directly. I’m simply displaying the /oauth2/authorize
page, with the new force_verify
parameter. When a user is logged in (browser cookie - which is not under my control) the authorization page now displays properly (because of the new parameter). The page will display the logged in user name followed by a Not You? link. It is when clicking that link the user is supposed to be logged out and redirected to the initial authorization page, asking for user credentials. This still doesn’t happen. The /kraken/base
redirect seems to have been fixed, but I’m now being redirected to the twitch home page and I’m still logged in.
So whatever /logout
is doing differently than /user/logout
, it is not working.